Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Expose available cipher configuration to node.js (for server) #4

Open
bu5hm4nn opened this issue Jun 15, 2018 · 0 comments
Open

Expose available cipher configuration to node.js (for server) #4

bu5hm4nn opened this issue Jun 15, 2018 · 0 comments
Labels
enhancement New feature or request

Comments

@bu5hm4nn
Copy link
Collaborator

The RFC standards specify a long list of cipher-suites that can be used for DTLS communication.

Expose an optional setting to node-js that can configure which cipher-suites a server will accept. Validate them against the use of PSK and Key authentication. If PSK callback is registered then require at least one PSK-capable ciphersuite to be enabled. If a server key is specified, then require at least one key-capable ciphersuite to be enabled.

Create node-js user friendly defines for the specification of the ciphers. See here for DTLS ciphers https://tools.ietf.org/html/rfc4492#section-6.

Create examples demonstrating at least

  1. A PSK configuration where
    a. the ciphersuite requirements are ok
    b. no ciphersuite suitable for PSK is set resulting in a node error exception.

  2. A key configuration where
    a. a the ciphersuit requirements are ok
    b. no ciphersuite suitable for key exchange is selected resulting in a node error exception.
@bu5hm4nn bu5hm4nn added the enhancement New feature or request label Jun 15, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@bu5hm4nn